Frank Crast, Author at Securezoo

LockBit 3.0 Ransomware: An evolving threat that challenges network defenses and mitigations

Cybersecurity Attacks, Malware, Ransomware / By Frank Crast / March 21, 2023 / ALPHV, BlackCat, BlackMatter, LockBit, LockBit Black, malware, RaaS, Ransomware

The FBI, CISA, and MS-ISAC have released a joint cybersecurity advisory regarding LockBit 3.0 ransomware as identified through FBI investigations as recently as this month.

Google Releases Chrome 111 Update With Fixes For 7 High Risk Vulnerabilities

Security Updates & Patches, Vulnerabilities & Exploits / By Frank Crast / March 21, 2023 / browser, Chrome, Chrome 111, Google

Google has released Chrome 111.0.5563.110 for Mac and Linux and Chrome 111.0.5563.110/.111 for Windows with fixes for seven High severity vulnerabilities.

Microsoft March 2023 Security Updates Fixes 101 Vulnerabilities (9 Critical, 2 zero-days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 14, 2023 / CVE-2023-21708, CVE-2023-23392, CVE-2023-23397, CVE-2023-23404, CVE-2023-23411, CVE-2023-23415, CVE-2023-23416, CVE-2023-24880, ICMP, Outlook, RCE, SmartScreen, Windows

The Microsoft March 2023 Security Updates includes patches and advisories for 101 vulnerabilities, including 9 Critical severity issues and two zero-days exploited in the wild.

Adobe Security Updates For Multiple Products (one Zero day)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / March 14, 2023 / Adobe, ColdFusion, Commerce, Creative Cloud, CVE-2023-26360, Dimension, Experience Manager, Illustrator, Photoshop, Substance 3D Stager

Adobe has released eight advisories addressing multiple vulnerabilities in Adobe Commerce, Experience Manager, Illustrator, Dimension, Creative Cloud, Substance 3D Stager, Photoshop, and ColdFusion products.

Royal Ransomware uses a unique “partial encryption approach” to evade detection

Cybersecurity Attacks, Malware, Phishing, Ransomware / By Frank Crast / March 3, 2023 / CISA, Cobalt Strike, encryption, FBI, Ransomware, RMM, Royal, SysInternals, Zeon

CISA and FBI have published a joint cybersecurity alert on Royal ransomware used in recent cyberattacks as recently as January 2023. The ransomware uses a unique “partial encryption approach” to evade detection.

Threat actors abuse Windows debugger tool to disguise PlugX trojan attacks

Cybersecurity Attacks, Malware / By Frank Crast / February 27, 2023 / debugger, malware, PlugX, RAT, Windows, x32dbg.exe

Researchers have discovered threat actors abusing legitimate open-source debugger tool for Windows to disguise PlugX trojan attacks.

Threat actors launch zero-day attack against Python Package Index (PyPI) packages

Application Security, Source Code Security, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 24, 2023 / FortiGuard, Open Source, PyPI, Python

Researchers have discovered threat actors launching zero-day attack against packages in the Python Package Index (PyPI) repository.

CISA Adds IBM and Mitel Vulnerabilities To Known Exploited Vulnerabilities Catalog

Cybersecurity Attacks, Vulnerabilities & Exploits / By Frank Crast / February 22, 2023 / Aspera, CVE-2022-40765, CVE-2022-41223, CVE-2022-47986, Faspex, IBM, Mitel, MiVoice

The Cybersecurity and Infrastructure Security Agency (CISA) has added IBM and Mitel vulnerabilities to its Known Exploited Vulnerabilities Catalog.

Attackers Exploit Forta GoAnywhere Zero-day Vulnerability

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 17, 2023 / CVE-2023-0669, Forta, GoAnywhere, Zero-day

Attackers have been exploiting a Forta GoAnywhere zero-day vulnerability (CVE-2023-0669).

Microsoft February 2023 Security Updates addresses 79 vulnerabilities (9 rated Critical, 3 zero days)

Security Updates & Patches, Vulnerabilities & Exploits, Zero-days / By Frank Crast / February 16, 2023 / CVE-2023-21715, CVE-2023-21823, CVE-2023-23376, PEAP, RCE

The Microsoft February 2023 Security Updates includes patches and advisories for 79 vulnerabilities, including 9 Critical severity remote code execution issues and three zero-days exploited in the wild.